This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/cUx14a6zvbXoQsxgCu4lwaeteWo.roa File: cUx14a6zvbXoQsxgCu4lwaeteWo.roa (raw, json) Hash identifier: z9zZDUVb5yLDsQYHoYGemDq5RVL+9VBrum00BPaUMRM= Subject key identifier: 71:4C:75:E1:AE:B3:BD:B5:E8:42:CC:60:0A:EE:25:C1:A7:AD:79:6A Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed Certificate serial: 019B7D5D01E9343904B7E7F93A6FAB54A857 Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/cUx14a6zvbXoQsxgCu4lwaeteWo.roa Signing time: Fri 02 Jan 2026 06:20:05 +0000 ROA not before: Fri 02 Jan 2026 06:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210848 IP address blocks: 185.156.74.0/24 maxlen: 24 185.193.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.mft rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:01:e9:34:39:04:b7:e7:f9:3a:6f:ab:54:a8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed Validity Not Before: Jan 2 06:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=714c75e1aeb3bdb5e842cc600aee25c1a7ad796a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:44:4d:b0:0b:6f:16:65:e2:27:64:e8:82:f6: c0:86:3d:5b:91:63:3d:0c:eb:97:62:88:eb:5c:00: fb:62:f0:d2:63:b4:5b:71:58:cc:95:c2:38:2b:9c: 30:46:08:2c:0e:ef:44:99:61:07:4c:01:a9:da:d4: 10:eb:e5:3d:3e:2d:59:c9:89:cd:af:fc:3a:05:3a: c0:73:ab:29:ad:12:7f:26:95:52:a2:e0:34:30:f0: 66:b8:60:2b:63:dc:b1:c4:de:76:a0:1f:b6:61:58: cd:3b:94:5d:25:8c:1e:63:92:a9:f3:9d:e3:b7:00: 43:cd:4c:7a:30:04:a5:65:f8:cf:96:2d:5b:ba:bb: a9:f9:ab:a0:58:b0:26:10:72:35:bd:ea:2c:46:1b: e0:a1:43:3f:51:49:62:a0:6f:91:19:80:04:b2:70: 64:c8:66:99:b3:0a:6c:0b:eb:67:72:41:21:db:04: 35:2f:85:38:9b:ce:fb:2e:39:8a:aa:5c:5b:d3:3d: 8c:61:e6:df:41:1c:18:10:b2:43:03:60:b7:38:42: 46:cc:d9:22:69:de:09:7c:4a:1d:c8:d1:f6:e3:65: 12:e4:b1:a0:08:08:9f:39:5b:98:b8:ba:8b:62:47: ce:18:c6:7b:69:c4:b3:c5:21:31:4d:b5:f6:c1:f4: 94:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4C:75:E1:AE:B3:BD:B5:E8:42:CC:60:0A:EE:25:C1:A7:AD:79:6A X509v3 Authority Key Identifier: keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/cUx14a6zvbXoQsxgCu4lwaeteWo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.74.0/24 185.193.88.0/24 Signature Algorithm: sha256WithRSAEncryption 52:74:d5:20:26:35:6e:f2:fa:e7:79:7b:ea:9d:44:ca:04:7f: a9:c0:f7:0e:45:1a:8d:b8:78:f1:5e:74:57:78:8d:d9:33:24: 5a:43:c4:fb:01:07:4a:19:6a:dd:a2:86:b9:56:10:7d:1e:37: b5:e9:31:91:bc:65:a0:cc:a9:99:34:62:4a:44:ab:53:f2:fc: 77:bb:57:a0:ca:55:65:d4:c8:d0:30:5e:c6:3a:dd:f2:84:75: ce:b2:3a:ad:e0:f4:03:86:f0:16:b4:17:ac:e3:18:9d:ed:03: 95:8e:9c:e2:af:a2:77:bc:6d:6e:10:97:8c:8a:de:9d:96:b8: b2:e8:f5:cf:da:46:6a:e8:ab:86:1b:ad:ea:51:5f:5c:bf:ec: e9:cd:1f:11:4d:6a:ca:4e:c0:75:c3:9c:67:a1:98:c5:06:77: 03:ab:94:1e:c0:75:52:d2:a7:33:f8:74:8a:12:f8:e1:dd:d7: 92:69:b3:49:ff:c9:26:07:d7:28:33:2d:ef:2b:12:7e:dc:fd: 6d:86:8b:13:6e:45:7a:1d:3b:91:d9:c6:0e:ad:a7:f1:54:a0: bd:40:a4:f8:0b:76:05:51:8c:f1:3c:fa:0d:c4:9f:ee:19:c7: 59:1a:2c:59:f4:b8:34:ec:eb:c7:0a:41:c9:59:f0:03:fe:33: 98:e9:55:42 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XQHpNDkEt+f5Om+rVKhXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYWYxMmY1Y2E3NWM5MjJhNGFhNWRhY2I0OWMwNGE5MzIz N2Y0ZWQwHhcNMjYwMTAyMDYyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTRjNzVlMWFlYjNiZGI1ZTg0MmNjNjAwYWVlMjVjMWE3YWQ3OTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnURNsAtvFmXiJ2TogvbAhj1bkWM9 DOuXYojrXAD7YvDSY7RbcVjMlcI4K5wwRggsDu9EmWEHTAGp2tQQ6+U9Pi1ZyYnN r/w6BTrAc6sprRJ/JpVSouA0MPBmuGArY9yxxN52oB+2YVjNO5RdJYweY5Kp853j twBDzUx6MASlZfjPli1burup+augWLAmEHI1veosRhvgoUM/UUlioG+RGYAEsnBk yGaZswpsC+tnckEh2wQ1L4U4m877LjmKqlxb0z2MYebfQRwYELJDA2C3OEJGzNki ad4JfEodyNH242US5LGgCAifOVuYuLqLYkfOGMZ7acSzxSExTbX2wfSUtQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHFMdeGus7216ELMYAruJcGnrXlqMB8GA1UdIwQY MBaAFLGvEvXKdckipKpdrLScBKkyN/TtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUt NTc2MGVmYmNjNjU0LzEvY1V4MTRhNnp2YlhvUXN4Z0N1NGx3YWV0ZVdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUtNTc2MGVmYmNjNjU0 LzEvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuZxKAwQA ucFYMA0GCSqGSIb3DQEBCwUAA4IBAQBSdNUgJjVu8vrneXvqnUTKBH+pwPcORRqN uHjxXnRXeI3ZMyRaQ8T7AQdKGWrdooa5VhB9Hje16TGRvGWgzKmZNGJKRKtT8vx3 u1egylVl1MjQMF7GOt3yhHXOsjqt4PQDhvAWtBes4xid7QOVjpzir6J3vG1uEJeM it6dlriy6PXP2kZq6KuGG63qUV9cv+zpzR8RTWrKTsB1w5xnoZjFBncDq5QewHVS 0qcz+HSKEvjh3deSabNJ/8kmB9coMy3vKxJ+3P1thosTbkV6HTuR2cYOrafxVKC9 QKT4C3YFUYzxPPoNxJ/uGcdZGixZ9Lg07OvHCkHJWfAD/jOY6VVC -----END CERTIFICATE-----Generated at Tue Jan 20 18:20:23 2026 by rpki-client